TITLE OF THE INVENTION 

METHOD FOR FACILITATING LEGITIMATE USE OF DIGITAL CONTENT 

(SUB-TITLE) 

Data Management Method , Recording Medium on Which Program 
for Imaging Method Is Recorded, Transmission Medium for 
Transmitting Imaging Method Program, Recording Medium on 
Which Program for Image-Restoration Method Is Recorded, 
and Transmission Medium for Transmitting Image- 
Restoration Method Program 

. BACKGROUND OF THE INVENTION 

Technical Field 

10 The present invention relates to a recording medium 

recording a program for a method of data management and a 
method of image creation, a transmission medium 
transmitting a program for a method of image creation, a 
recording medium recording a program for a method of 

15 image restoration, and a transmission medium transmitting 
a programs for a method of image restoration, and more 
particularly relates to a method of data management for 
distributing digital content with annex information 
visibly arranged, a recording medium recording a program 

20 for a method of image creation for using distributed 
image data in the method of data management, a 
transmission medium for transmitting the program, a 
recording medium recording a program for a method of 
image restoration for using distributed image data, and a 

25 transmission medium transmitting the program. 
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Description of Related Art 

For software such as computer programs and 
electronic publications, computerized data are stored on 
magneto-optic disks (MO), DVD, floppy disks (FD), mini 
5 discs (MD), etc,, and sold. These computerized data are 
easily duplicated, and illegal duplicates are frequently 
made. On this account, software vendors' and publishers' 
copyrights are notably encroached and profits notably 
hindered. 

10 Computerized data including static images and moving 

images distributed via the Internet, CATV, etc. are also 
illegally duplicated, which spoils copyright holders' 
profits. 



15 content" stored on recording media or distributed via a 
network, the digital content is encrypted using an 
encryption key, and the encrypted substantive data are 
distributed. 



20 distributor of content from his/her personal computer and 
downloads digital content to the hard disk to use. 
Firstly, the user accesses a host computer to obtain a 
plug-in module for downloading. After that, an 
identification number of a hard disk drive being used, a 

25 CPU identification number of the computer being used, and 



To protect computerized data referred to as "digital 



For example, consider that a user accesses a 
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other use-specific identification information are sent to 
the host computer. 

On the content distributor end substantive data, in 
which digital content has been encrypted with a content 
5 key, and licensing data, in which the content key has 
been encrypted with user-specific identifying 
information, are sent to the user end. . 

The user stores the encrypted substantive data and 
the authorization information which are left encrypted on 

10 the hard disk. When the user uses the digital content, - 

the user decrypts the authorization information using the 
identification information such as an identification 
number of the hard disk drive and obtains the content 
key. With the content key, the user decrypts the. 

15 encrypted digital content to use. 

In this case, an encryption key for coding digital 
content can be made to be common when right of digital 
content availability is granted to individual users, and 
the right of availability can be individually granted by 

20 coding a decryption key by using a user-specific 
information which differs depending on the user. 

When data are distributed in the above manner, a 
data distributor needs to individually send encrypted 
digital content and authorization information which is a 

25 decryption key of encrypted digital content. 



-3- 




Meanwhile users need to individually store the 
encrypted digital content sent that has been sent in and 
their authorization information on a recording medium. 

Therefore if authorization information is destroyed 
5 while it is being sent from a data distributor to a user, 
or is destroyed or lost on a user's recording media due 
to some accident, digital content cannot be used and a 
procedure for obtaining the authorization information 
must be performed again. 
10 Further, in situations in which library apographs 

and art museum collections are by photographing or 
scanning imported as image data that is used by users, if 
the image data is completely encrypted, pinpointing the 
image data desired on the users' end before transacting 
15 authorization information is difficult. 

Therefore it is desirable that part of the image can 
be checked by users and the image cannot be illegally 
diverted . 

For this reason, it is conceivable that annex 
20 information such as copyright information is embedded in 
digital content and distributed as a visible digital 
watermark as shown in Japanese Laid-Open Pat. App. 1996- 
241403. 

When annex information is embedded in digital 
25 content and distributed as a visible digital watermark, 
modulation data of color or brightness must be created 
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for each pixel and be distributed with digital content 
with annex information to eliminate the annex information 
and restore the original digital content. Therefore there 
occur problems that transmission and receive of such data 
5 is time-consuming and large memory capacity for storing 
data is consumed. 
SUMMARY OF THE INVENTION 

The present invention provides a method of data 
management which facilitates use by legitimate users 

10 without violating copyright and literary property, a 
recording medium recording a program for a method of 
image creation to use distributed image data, in this 
method, a transmission medium transmitting the program, a 
recording medium recording a program for a method of 

15 image restoration to use distributed image data, and a 
transmission medium transmitting the program. 

A method of data management as determined in the 
present invention is for distributing digital content 
with annex information visibly arranged, and includes a 

20 step that a part of the above-mentioned digital content 
including a position . where the above-mentioned annex 
information is visibly arranged is duplicated as a 
discrete data unit, and this discrete data unit is 
decrypted to create a decrypted discrete data unit, a 

25 step that image-compositing information concerning a 
position and size on the occasion when the above- 
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mentioned annex information is arranged in the above- 
mentioned digital content, and authorization information 
including information of an encryption key into which the 
above-mentioned encrypted discrete data unit is encrypted 
5 are embedded in the above-mentioned digital content as an 
invisible information to create a authorization 
information-added data unit, a step that the above- 
mentioned annex information is visibly arranged on a 
position corresponding to a discrete data unit of the 

10 above-mentioned data part with the above-mentioned 

authorization information to create a data part with 
annex information, and a step that composite data 
composed of the above-mentioned encrypted discrete data 
unit and the above-mentioned data part with annex 

15 information is created and distributed. 

Herein the annex information is embedded in the 
above-mentioned digital content as a visible digital 
watermark. 

Annex information equivalent to annex information 
20 embedded in the above-mentioned digital content as a 

visible digital watermark can be configured so that it 
may be embedded in the above-mentioned discrete data unit 
as an invisible digital watermark and be encrypted to 
create an encrypted discrete data unit. 
2 5 Furthermore, image-compositing information and 

authorization information can be configured so that they 
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may be encrypted with a secret key and embedded in 
digital content as an invisible information , and the 
invisible information can be embedded in a part including 
a position where annex information of digital content is 
5 arranged. Herein the secret key can be at least any one 
of identification information of a user, identification 
information of devices mounted on a personal computer 
used by the user, identification information of CPUs 
mounted on the personal computer used by the user, 

10 identification information specific to a recording media 
storing the above-mentioned digital content, or user 
login information registered on the computer used by the 
user, be identification information common to plural, 
users, and be selected from at least any one of 

15 identification information specific to a distributor of 
the above-mentioned digital content or identification 
information specific to an author of the above-mentioned 
digital content. 

The method of data management can be configured so 

20 that it may comprise; 

a step that a authorization information-added data 
unit and an encrypted discrete data unit are separated 
from distributed composite data; 

a step that image-compositing' information and 

25 authorization information are extracted from the 

separated authorization information-added data unit; 
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a step that a encryption key into which the above- 
mentioned discrete data unit is encrypted is restored by 
using the extracted authorization information; 

a step that a discrete data unit is restored from 
5 the above-mentioned encrypted discrete data unit by using 
the restored encryption key; and 

a step that the restored discrete data unit is 
.merged into image data of the above-mentioned 
. authorization information-added data unit based on the 
10 above-mentioned image-compositing information*. 

Herein the method of data management can be 
configured so that invisible information embedded in a 
authorization information-added data unit may include the 
use counts that a user uses the above-mentioned digital 
15 content; and the above-mentioned invisible information is 
updated every time a user uses the above-mentioned 
digital content. 

The method of data management can be also configured 
so that if the use counts exceed a predetermined value, 
20 the use by a user may be prohibited. 

The method of data management can be configured so 
that image-compositing information and authorization 
information extracted from the above-mentioned 
authorization information-added data unit may be 
25 prohibited, and image data into which restored partial 

data is merged is prohibited to be saved in image data of 



-8- 




the above-mentioned authorization information-added data 
unit • 

The present invention provides a recording media 
recording a program for a method of image creation 
5 comprising; 

a step that a part of digital content including a 
position where annex information is visibly arranged is 
duplicated as . partial data; 

image-compositing information concerning a position 
10. and size on the occasion when the above-mentioned annex . 
information is arranged in the above-mentioned digital 
content and authorization information including 
information of the encryption key into which the above- 
mentioned encrypted partial data is encrypted are 
15 embedded in the above-mentioned digital content as 
invisible information to create a authorization 
information-added data unit; 

a step that the above-mentioned annex information is 
visibly arranged on a position corresponding to a 
20 discrete data unit of the above-mentioned authorization 
information-added data unit to create a data part with 
annex information; and 

a step that a composite data composed of the above- 
mentioned encrypted partial data and the above-mentioned 
25 data part with annex information is created. 
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Herein a floppy disk, hard disk, a semiconductor 
memory, CD-ROM, DVD, or MO (magnet-optic disk), which is 
computer-recordable, is conceivable as a recording 
medium. 

5 The present invention provides a transmission medium 

transmitting a program for a method of image creation 
comprising; 

a step that a part of digital content including a 
position where annex information is visibly arranged is 

10 duplicated as partial data and the partial data is 
encrypted to create an encrypted partial data; 

a step that image-compositing information concerning 
a position and size on the occasion when the above- 
mentioned annex information is arranged on the above- 

15 mentioned digital content and authorization information 
including information of the encryption key into which 
the above-mentioned encrypted partial data is encrypted 
are embedded in the above-mentioned digital content as 
invisible information to create a authorization 

20 information-added data unit; 

a step that the above-mentioned annex information is 
arranged on a position corresponding to a discrete data 
unit of the above-mentioned authorization information- 
added data unit to create a data part with annex 

25 information; and 
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a step that a composite data composed of the above- 
mentioned encrypted partial data and the above-mentioned 
data part with annex information is created. 

Herein a communication medium on a computer network 
5 system (LAN, Internet, or radio communication network) 
for transmitting and providing module information as a 
carrier wave as a fiber optic, or a radio circuit is 
included as a transmission medium. 

The present invention provides a recording media 
10. recording a program for a method of data restoration, 
comprising; 

a step that a authorization information-added data 
unit and an encrypted partial data are separated from 
distributed composite data; 
15 a step that image-compositing information and 

authorization information are extracted from the 
separated data part with annex information; 

a step that the encryption key into which the above- 
mentioned encrypted partial data is encrypted is restored 
20 by using the extracted authorization information; 

a step that the above-mentioned encrypted partial 
data is restored to a discrete data unit by using the 
restored encryption key; and 

a step that the restored discrete data unit is 
25 merged into image data of the above-mentioned 
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authorization information-added data unit based on the 
above-mentioned image-compositing information . 

Furthermore the present invention provides a 
transmission medium transmitting a program for a method 
5 of image restoration comprising; 

a step that a authorization information-added data 
unit and an encrypted discrete data unit are separated 
from the distributed composite data; 

a step that image-compositing information and 
10 authorization information are extracted from the 

separated authorization information-added data unit; 

a step that the encryption key into which the above- 
mentioned encrypted discrete data unit is encrypted is 
restored by using the extracted authorization 
15 information; 

a step that the above-mentioned encrypted discrete 
data unit is restored to a discrete data unit by using 
the extracted encryption key; and 

a step that the restored discrete data unit is 
20 merged into image data of the above-mentioned 

authorization information-added data unit based on the 
above-mentioned image-compositing information. 

From the following detailed description in 
conjunction with the accompanying drawings , the foregoing 
25 and other objects, features, aspects and advantages of 
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the present invention will become readily apparent to 

those skilled in the art. 

BRIEF DESCRIPTION OF THE DRAWINGS 

Fig. 1 is a conf igurational outline diagram for the 
5 present invention; 

Fig. 2 is a conf igurational outline diagram for the 
content administrator side; 

Fig. 3 is a conf igurational outline diagram for the 
content administrator side; 
10 Fig. 4 is a flowchart of when distribution . data is 

created; 

Fig. 5 is a diagram in principle of distribution 
data being created; 

Fig. 6 is a flowchart of when content is utilized; 
15 Fig. 7 is a diagram in principle of content being 

utilized; 

Fig. 8 is an explanatory diagram illustrating an 
example of authorization information structure; 

Fig. 9 is an explanatory diagram illustrating 
20 another example of authorization information structure; 
and 

Fig. 10 is a flowchart showing an example of an 
access control method. 

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS 
25 Fig. 1 is a conf igurational outline for the present 

invention. 
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A content provider 1 is a digital content copyright 
holder or literary property holder, and provides digital 
content 11 to a content administrator 2 for handling. 
The content administrator 2 administrates the 
5 digital content 11 provided by the content provider 1, an 
encryption key used when the digital content 11 is 
handled, and user information on users who use the 
digital content 11. 

A content user 3 sends user information 14 to the 
10 content administrator if. he/she would like to use digital 
content administrated by the content administrator 2. 

The content administrator 2 administrates the user 
information 14 sent from a content user 3, creates 
content authorization information 13, converts the 
15 content authorization information into distribution data 
12 including the digital content 11, and sends it to the 
content user 3. 

The content administrator 2 duplicates part of the 
digital content as a discrete data unit and encrypts it. 
2 0 The content administrator 2 embeds annex information such 
as copyright information as a visible digital watermark 
in a position in the digital content 11 corresponding to 
the discrete data unit. The content administrator 2 
encrypts image-compositing information showing position 
25 and size of the discrete data unit and information on the 
encryption key used when the discrete data unit is 
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encrypted to create authorization information 13, The 
content administrator 2 embeds the authorization 
information 13 in the digital content 11 as an invisible 
digital watermark and merges the digital watermark and 
5 the encrypted discrete data unit into the distribution 
data 12. 

Herein the content provider and content 
administrator 2 may be the same. 
Content Administrator 

10 Fig. 2 is a functional block diagram showing the 

overall configuration of the content administrator 2 . 

The content administrator 2 is composed of a host 
computer and server applications, and includes: a 
content administration module 21; a annex information 

15 input module 22 for input of annex information such as 
copyright information, and for determining the position 
where the annex information is embedded; an image 
processing module 23 functioning to duplicate a portion 
of the digital content, and to visibly embed annex 

20 information in an original image; an image encrypting 
module 24 for encrypting with a content key a discrete 
data unit duplicated from the digital content; an 
authorization information creating module 25 for 
encrypting image-compositing information indicating 

25 information concerning the content key, and position and 
size of the discrete data unit, in order to create 
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authorization information, an information embedding 
module 26 embedding the information of the content key 
and the image-compositing information in digital content 
as invisible information, a content key administrating 
5 module 27 administrating a content key for encrypting the 
discrete data unit; and a user information acquisition 
module 28 for acquiring and administrating user 
information for the content user 3. 
Content User 

10 Fig. 3 is a functional block diagram showing the 

overall configuration of a content user 3. 

The content users 3 are made up of terminals such as 
personal computers and workstations, and an application 
for using content. . The content user 3 is furnished with: 

15 a user information administrating module 31 for 

administrating user-specific identification information 
such as the identification number of a hard disk drive in 
use and the identification number computer's on-board 
CPU; a distribution data acquisition module 32 for 

20 acquiring distribution data from the content 

administrator 2; an image-compositing information 
acquisition module 33 for extracting image-compositing 
information from the distribution data; a content key 
acquisition module 34 for. acquiring information for 

25 content keys from the distribution data; an image 

decrypting module 35 for decrypting encrypted a discrete 
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data unit among the distribution data; an image 
processing module 36 for compositing a decrypted discrete 
data unit with digital content; a user information 
managing module 37 for managing user information and 
5 availability information based on availability of 

content; and a content working module 38 for working 
digital content. 
Content Distribution 

The following describes, based on Fig. 4 and Fig. 5, 

10 operations performed by. the content administrator 2 
before digital content is distributed. 

In step Sll, the content administrator 2 determines 
whether content information 41 concerning digital content 
to be distributed is input or not. The content 
.15 information. 41 is information concerning a copyright 

holder of the digital content 11 and information of an 
administrator distributing the digital content 11, and 
for being embedded in the digital content as a visible 
digital watermark. The content information can be 

20 obtained by input by an operator with an input device 
such as a keyboard, or extraction of corresponding 
information from a database file administrating the 
digital content . 

In step Sll, if the content administrator 2 

25 determines that the content information has been input, 
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step 12 ensues. In step 12, the input content information 

41 is stored in a storing device and administrated. 

In step S13, the content administrator 2 determines 
whether image-compositing information 42 concerning 
5 position where the content information 41 is embedded as 
a visible digital watermark, and concerning size has been 
input or not. 

For example, operator input of the coordinates of an 
initial point P(x, y) and pixel numbers G(x) and G(y) 
10 with an input device such as a keyboard is regardsed as 
input of image-compositing information 42 and step S14 
ensues. The existence of image-compositing information 

42 such as the coordinates of an initial point P(x, y) 
and pixel numbers G(x) and G(y) set by an application, 

15 also regarded as the input of image-compositing 

information 42, and step S14 ensues. In step S14, the 
input image-compositing information 42 is stored in a 
storing device and administrated. 

In step S15, the content administrator 2 duplicates 

20 a part of the digital content 11 based on the image- 
compositing information 42 to create a discrete data unit 
43. At the same time, the content administrator 2 embeds 
the content information 41 in a position corresponding to 
the discrete data unit 43 in the digital content. 

25 Methods involving color modulation or methods involving 
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brightness modulation are available as ways of visibly 
embedding the content information 41. 

In step S16, the content administrator 2 embeds the 
content information 41 in the discrete data unit 43 as an 
5 invisible digital watermark to create an information- 
added discrete data unit 44. Information as an invisible 
digital watermark can be added by inserting the content 
information 41 in a specific frequency band of the 
discrete data unit or thinning out a portion of the data 

10 and inserting the content information 41 there. 

In step S17, the content administrator 2 encrypts 
the information-added discrete data unit 44 with a 
content key 45 to create an encrypted discrete data unit. 
The content administrator 2 administrates the content key 

15 45, and the same key may perform encryption and 
decryption. 

In step S18, the content administrator 2 encrypts 
the image-compositing information 42 and the content key 
45 with a secret key 47 to create authorization 

20 information 48. The secret key 47 is an encryption key 
created based on user information sent from the content 
user 3. The user information 14 is previously sent from 
the content user 3, and at least one of: user 
identification information such as user ID or password; 

25 identification information for devices loaded on the 
user-operated computer; identification information for 
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the on-board CPU in the user-operated computer; 
identification information specific to a recording medium 
storing the digital content; or user login information 
registered in the user-operated computer, may be used as 
5 user information 14. 

In step S19, the content administrator 2 embeds the 
authorization information 48 as an invisible digital 
watermark in a position in information-added data unit 49 
other than that which corresponds to the discrete data 
10 unit 43, which creates an authorization information-added 
data unit 50 . 

In step S20, the content administrator 2 composites 
the authorization information-added data unit 50 and the 
encrypted discrete data unit 46 into composite data 60. 
15 The composite data 60 created in this way is distributed 
through an online network such as the Internet or 
recording media such as CD-ROMs and DVDs, in response to 
requests from content users 3. 
Using Content 

20 The following describes based on Fig. 6 and Fig. 7 

operations when the content user 3 uses the distributed 

digital content. 

In step S31, composite data 60 is acquired from the 

content administrator 2. Herein, it is assumed that the 
25 content user 3 previously accesses the content 

administrator 2 and requests use of digital content 
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administrated by the content administrator 2, sending 
user-specific information to the content administrator 2. 
The composite data 60 can be obtained by either 
downloading it via any type of network, or by the content 
5 administrator 2 distribution of recording media on which 
it is recorded. The acquired composite data 60 is stored 
on the hard disk used by the content user 3, or on 
another recording medium. 

In step S32, an encrypted data unit 61 and an 

10 authorization information-added data unit 62 are 

segregated. Herein, in the authorization information- 
added data unit 62, authorization information is embedded 
as an invisible watermark, and content information 
indicating copyright information and the like is embedded 

15 as visible digital watermark. In step S33, the content 
user 3 displays the authorization information-added data 
unit 62. The authorization information-added data unit 
62 that is displayed is visibly embedded with content 
information indicating copyright information and the like 

20 in the original digital content, and is configured in a 
position other than where the content information is 
embedded, so that the original digital content may be 
confirmed. 

In step S34, whether or not the content user 3 has 
25 made a use request is determined. If on the 

authorization information-added data unit 62 display the 
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content user 3 has made an instruction to the effect that 
this is to be used, step S35 ensues. 

In step S35, the content user 3 extracts 
authorization information from the authorization 
5 information-added data unit 62. The authorization 

information 63 can be extracted by performing frequency 
analysis or image analysis. 

In step S36, the content user decrypts the 
authorization information 63 to pick out a content key 64 

10 and image-^compositing information 65. The authorization 
information 63 is encrypted with the secret key 47 based 
on the user information 14. On this account, the content 
user 3 creates a decryption key 66 corresponding to the 
secret key 47 based on such user information 14 as: user 

15 identification information such as user ID or password; 
identification information for devices loaded on the 
user-operated computer; identification information for 
the on-board CPU in the ( user-operated computer; 
identification information specific to a recording medium 

20 storing the digital content; or user login information 
registered in the user-operated computer. Then 
decrypting the authorization information 63 utilizing the 
decryption key 66 enables the content key 64 and the 
image-compositing information 65 to be picked out. 
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In step S37, decrypting the encrypted discrete data 
unit 61 with the content key 64 that has been taken out 
restores the discrete data unit 67. 

In step S38, based on information relating to 
5 position and size of the discrete data unit 67 included 
in the image-compositing information 65, the content user 
3 restores the original digital content. 68 by replacing 
data in a predetermined position in the authorization 
information-added data unit 62 with the discrete data 
10 unit 67 . 

In step S39, the content user 3 works the content by 
displaying the restored digital content 63 on the . 
display , for example. Since content information such as 
copyright information is embedded as an invisible 

15 watermark in the replaced discrete data unit 67,, the 
restored digital content 68 is such that content is 
embedded as invisible information, and the digital 
content 63 to be displayed includes content information 
as an invisible digital watermark. 

20 Authorization Information Structure 

Fig. 8 shows the structure of authorization 
information embedded in the digital content 11 as an 
invisible digital watermark. 

Authorization information 70 is composed of a secret 

25 key-type area 71 in which the type of the secret key used 
for encryption is stored, and secret key information area 
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72 in which information encrypted with the secret key is 



The secret key type stored in the secret key-type 
area 71 indicates what type of information from the user 
5 information is used as the secret key. For example, if 
the storage-medium ID for a magneto-optic disk (MO) on 
which data are stored by the user is a secret key, the 
value to be stored in the secret key-type area- 71 is set 
to "0" in advance. If a password set by the user is the 

10 secret key, the value to be stored in the secret key-type 
area 71 is set to "1" in advance. 

The secret key information area 72 is composed of 
pixel position area 73, X-pixel size area 74, Y-pixel 
size area 75, and content key area 76. The image 

15 position area 73 is for. storing on initial point P(x, y) 
when duplicating the discrete data unit 43. For example, 
this initial point P(x, y) indicates the left top corner 
point, and is input when the content administrator 2 
creates distribution data. 

20 in the X-pixel size area 74 and Y-pixel size area 

75, x-direction pixel number G(x) and y-direction pixel 
number G(y) for the discrete data unit 43 are stored 
respectively. The x-direction pixel and y-direction 
pixel numbers G(x) and G(y) are input when the content 

25 administrator 2 creates distribution data, as is the case 
with the initial point P(x, y). 



stored. 



-24- 



• m 

In the content key area 76, the content key 45 
administrated by the content administrator 2 is stored. 
Data stored in the pixel position area 73 of the secret 
key information area 72, the X-pixel size area 74, the Y- 
5 pixel size area 75, and the content key area 76 are 
encrypted with a secret key identified by data in the 
secret key-type area. 

The authorization information embedded in the 
digital content 11 as an invisible digital watermark can 

10 be structured as shown in Fig. 9. 

In this case, authorization information data 80 is 
composed of pixel position area 81, X-pixel size area 82, 
Y-pixel size area 83, secret key-type area 84, and secret 
area information area 85. The pixel position area 81, X- 

15 pixel size area 82, and Y-pixel size area 83 respectively 
store the initial point P(x, y) when the discrete data 
unit 43 is duplicated, the x-direction pixel number G(x), 
and the y-direction pixel number G(y). These data stored 
in pixel position area 81, x-pixel size area 82, and Y- 

20 pixel size area 83 are input when the content 

administrator 2 creates distribution data as described 
above, and stored without encryption. 

The secret key-type area 84 stores secret key type 
information indicating what type of information from the 

25 user information 14 is used as a secret key. For 

example, if the storage-medium ID of a magneto-optic disk 
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(MO) on which data are stored by the user is a secret 
key, the value to be stored in the secret key-type area 
71 is set to " 0"in advance. If a password set by the 
user is the secret key, the value to be stored in the 
5 secret key-type area 71 is set to "1." 

The secret key information area 85 stores 
information for the content key 45 encrypted with the 
secret key 47 . 
Access Restriction Method 

10 If the decrypted content key 64, the discrete data 

unit 67 decrypted with the content key 64, and the 
restored digital content 68 are permitted to be saved in 
a memory or a recording medium in the process of 
distribution data being restored by the content user 3, 

15 there is the possibility that data is illegally. 

distributed using the saved data. A method of access 
restriction to prevent this will be explained based on 
Fig. 10. 

The application by which the content user 3 uses the 
20 distribution data has a monitoring function and activates 
a monitoring function program in step S41 at boot-up of 
the content utilization program. 

This monitoring function program monitors for 
illegal programs ("memory hook" command: an Application 
25 Programming Interface) that function to snatch data in 
transit among the plurality of libraries that are 
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components of the content utilization program. If the 
monitoring function program detects the occurrence of a 
memory hook command, program utilization is restricted. 
In step S43, the monitoring function program 
5 determines whether or not a process by a memory hook- 
related command is started. If the monitoring function 
program determines that a process executing a memory 
hook-related command is started, step S44 ensues; 
otherwise step S4 ensues . 

10 In step S44, the monitoring function program 

executes error handling. In error handling, the 
monitoring function program displays an error display 
showing ,that an illegal program based on a memory hook 
command is started and step S47 ensues. 

15 In step 45, the monitoring function program executes 

operations of an application for utilizing the digital 
content. In step S46, the monitoring function program 
determines whether or not to end the application. If the 
user has instructed termination, step S47 ensues. 

20 in step S47, the monitoring function program 

terminates the application for utilizing the digital 
content . 

By this means the program restricts data written in 
the memory from being snatched while the program is 
25 running, and thus prevents the content key 64 and the 
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digital content 68 obtained from the distribution data 
from being saved illegally - 
Other Embodiments 

A completely different image can be composited in a 
5 position corresponding the discrete data unit 43 of the 
digital content 11 to composite the data part with annex 
information 49. In this case, an image to be composited 
may include the content information 4, and an image not 
including the digital content 41 can be composited. 

10 After the content information 41 is embedded in a 

position corresponding to the discrete data unit 43 of 
the digital content 11 as a visible digital watermark, 
the encrypted authorization information 48 can be 
embedded as an invisible digital watermark to create the 

15. authorization information-added data unit 50. 

The decryption key 66 for decrypting the 
authorization information 63 can be common to the 
encryption key 47 used when the encrypted authorization 
information 48 is created. 

20 The secret key 47 used when the encrypted 

authorization information 48 can be used as a secret key, 
and the decryption key 66 previously provided for the 
content user 2 by content administrator 2 can be used as 
a public key. 

25 Use count of the number of times the content user 3 

has used digital content can be provided as an invisible 
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digital watermark embedded in the digital content 68. in 
this case, the use count information with the 
authorization information 63 embedded in the 
authorization information-added data unit 62 as an 
5 invisible digital watermark can be embedded as a digital 
watermark to update the invisible watermark every time 
the content user 3 uses the digital content. 

When the content user 3 gives an instruction with 
the intention of using digital content, utilization of 

10 digital content can be made to be restricted if the use 
count exceeds a predetermined value. 

It is also possible to rewrite the authorization 
information embedded as an invisible digital watermark to 
restrict the digital content from being used thereafter 

15 if the use count exceeds a predetermined value. 

A recording medium on which a program by the present 
invention as above described is recorded is included in 
the present invention. Herein computer-readable floppy 
disks, hard disks, semiconductor memory, CD-ROMs, DVDs 

20 and MOs (magneto-optical disks) are conceivable as 
recording media. 

A transmission medium transmitting a program by the 
present invention as above-described is included in the 
present invention. "Transmission media" herein include 

25 communications media (fiber optics, radio circuitry) on a 
computer network (LAN, the Internet, or radio 
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communications network) system for supplying program 
information by propagation as a carrier wave. 

According to the present invention , annex 
information is visibly arranged in digital content, which 
5 is embedded with authorization information and image- 
compositing information and distributed with an encrypted, 
discrete data unit. The discrete data unit includes the 
position where the annex information is arranged. The 
authorization information is embedded as invisible 

10 information including encryption key information for 

encrypting the discrete data unit. Therefore, delivering 
by a separate route a decryption key for decrypting the 
encrypted discrete data unit is unnecessary. Content 
users can readily check an overview of the digital 

15 content, and meanwhile legitimate users can restore the 
original digital content for use from the composite data 
that has been distributed. 

While only selected embodiments have been chosen to 
illustrate the present invention, to those skilled in the 

20 art it will be apparent from this disclosure that various 
changes and modifications can be made herein without 
departing from the scope of the invention as defined in 
the appended claims. Furthermore, the foregoing 
description of the embodiments according to the present 

25 invention is provided for illustration only, and not for 
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the purpose of limiting the invention as defined by the 
appended claims and their equivalents. 
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